I can confirm this issue using an old Hardy system, though I'm not
entirely sure where the problem lies or whether the breakage is
intentional (ie, the SSL library is now enforcing some policy).
Using firefox-3.0 and firefox-3.1 on jaunty, I get "security library:
improperly formatted DER-encoded message" with *no* option to add an
exception or connect to the site at all. On the hardy machine, the error
is "ssl_error_bad_cert_domain" stating that the domain on the
certificate and the domain being used do not match. However, closer
inspection reveals that, according to the certificate, they *do.* This
could mean that the certificate/ca-cert is indeed corrupt.
I also tested the URL with wget. On jaunty: "Unable to locally verify
the issuer's authority." On hardy: "Unable to get local issuer
certificate." I'll leave this bug open so someone else may look at it,
but it almost seems that the newer SSL library is only using a better
error-checking mechanism and that certificate really is bad.
** Also affects: openssl (Ubuntu)
Importance: Undecided
Status: New
--
[regression] Firefox "sec_error_bad_der"
https://bugs.launchpad.net/bugs/342834
You received this bug notification because you are a member of Ubuntu
Bugs, which is a direct subscriber.
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
